Vulnerability Details CVE-2025-20693
In wlan STA driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09812521; Issue ID: MSV-3421.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.4%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2025-20693
-
cpe:2.3:a:linuxfoundation:yocto:4.0
-
cpe:2.3:a:mediatek:software_development_kit:2.4
-
cpe:2.3:a:mediatek:software_development_kit:2.5
-
cpe:2.3:a:mediatek:software_development_kit:3.3
-
cpe:2.3:a:mediatek:software_development_kit:3.5
-
cpe:2.3:a:mediatek:software_development_kit:3.6
-
cpe:2.3:h:mediatek:mt2737:-
-
cpe:2.3:h:mediatek:mt6835:-
-
cpe:2.3:h:mediatek:mt6878:-
-
cpe:2.3:h:mediatek:mt6886:-
-
cpe:2.3:h:mediatek:mt6897:-
-
cpe:2.3:h:mediatek:mt6899:-
-
cpe:2.3:h:mediatek:mt6985:-
-
cpe:2.3:h:mediatek:mt6989:-
-
cpe:2.3:h:mediatek:mt6990:-
-
cpe:2.3:h:mediatek:mt6991:-
-
cpe:2.3:h:mediatek:mt7902:-
-
cpe:2.3:h:mediatek:mt7920:-
-
cpe:2.3:h:mediatek:mt7921:-
-
cpe:2.3:h:mediatek:mt7922:-
-
cpe:2.3:h:mediatek:mt7923:-
-
cpe:2.3:h:mediatek:mt7925:-
-
cpe:2.3:h:mediatek:mt7927:-
-
cpe:2.3:h:mediatek:mt7932:-
-
cpe:2.3:h:mediatek:mt8196:-
-
cpe:2.3:h:mediatek:mt8678:-
-
cpe:2.3:h:mediatek:mt8796:-
-
cpe:2.3:h:mediatek:mt8893:-
-
cpe:2.3:o:google:android:13.0
-
cpe:2.3:o:google:android:14.0
-
cpe:2.3:o:google:android:15.0
-
cpe:2.3:o:openwrt:openwrt:21.02.0
-
cpe:2.3:o:openwrt:openwrt:23.05